CVE-2021-1581
published 2021-08-25CVE-2021-1581: Multiple vulnerabilities in the web UI and API endpoints of Cisco Application Policy Infrastructure Controller (APIC) or Cisco Cloud APIC could allow a remote…
critical9.1CVSS 3.1
AVNACLPRNUINSUCNIHAH
Multiple vulnerabilities in the web UI and API endpoints of Cisco Application Policy Infrastructure Controller (APIC) or Cisco Cloud APIC could allow a remote attacker to perform a command injection or file upload attack on an affected system. For more information about these vulnerabilities, see the Details section of this advisory.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cisco | application_policy_infrastructure_controller | < 3.2\(10f\) | 3.2\(10f\) |
| cisco | application_policy_infrastructure_controller | — | — |
| cisco | application_policy_infrastructure_controller | >= 4.0 < 4.2\(7l\) | 4.2\(7l\) |
| cisco | application_policy_infrastructure_controller | >= 5.0 < 5.2\(1g\) | 5.2\(1g\) |
| cisco | cisco_application_policy_infrastructure_controller | — | — |
| cisco | cloud_application_policy_infrastructure_controller | < 3.2\(10f\) | 3.2\(10f\) |
| cisco | cloud_application_policy_infrastructure_controller | >= 4.0 < 4.2\(7l\) | 4.2\(7l\) |
| cisco | cloud_application_policy_infrastructure_controller | >= 5.0 < 5.2\(1g\) | 5.2\(1g\) |